No | Date | Request | Urls | Hosts | IDS | Rule | Score | Zero | VT | Player | Etc | |||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
1 | 2021-07-09 18:12 |
08.jpg.exe ed1921467f6784af6bdca40a06a541b5hancitor PE32 OS Processor Check PE File VirusTotal Malware PDB Malicious Traffic buffers extracted unpack itself Check virtual network interfaces IP Check ComputerName |
3
|
4 | 1 | 4.6 | 20 | ZeroCERT | ||||||||||||||||
|
||||||||||||||||||||||||
2 | 2021-07-09 10:01 |
08.jpg ed1921467f6784af6bdca40a06a541b5DNS Socket ScreenShot AntiDebug AntiVM PE32 OS Processor Check PE File Browser Info Stealer FTP Client Info Stealer VirusTotal Malware Cryptocurrency wallets Cryptocurrency Buffer PE PDB MachineGuid Code Injection Malicious Traffic Check memory buffers extracted ICMP traffic unpack itself Collect installed applications Check virtual network interfaces suspicious process suspicious TLD sandbox evasion anti-virtualization IP Check installed browsers check Ransomware Browser ComputerName Software |
4
|
8 | 16.4 | 20 | ZeroCERT | |||||||||||||||||
|